The Stack - The Stack (Page 35)

vulnerabilities | Jun 17, 2024

Microsoft updates mitigation for critical “wormable” bug

256,000 devices believed publicly exposed. But are MSMQ bugs really attacked in the wild?

| Cloud | Jun 14, 2024

Big Iron to Big Cloud? AWS builds out mainframe migration offering with application testing toolkit

On-demand pricing for AWS Mainframe Modernization Micro Focus Runtime using a M2.m6i.8xlarge instance clocks in at $88.80/hour, for what it's worth. Cheaper options are available.

Security | Jun 13, 2024

💀This malware campaign uses Discord emojis for C2 instructions

Camera emoji? "Take a screenshot of the victim's screen and upload it to the command channel as an attachment."

Snowflake | Jun 10, 2024

Mandiant confirms 165 Snowflake breach victims – sees custom .NET and Java reconnaissance tool

“At least 79.7% of the accounts leveraged by the threat actor in this campaign had prior credential exposure

| Financial Services | Jun 10, 2024

Natwest launches new RAG chatbot pilot

Cloud-based ChatGPT 3.5 turbo as the underlying model, with NeuralSeek-powered RAG in support.

Software | Jun 04, 2024

Amid ransomware epidemic, backup and security pros need to get closer

"You have to get contained or they’ll discover and wipe your backups"

Security | Jun 01, 2024

Snowflake warns over “rapeflake” data breaches

"The user must be left in the disabled state for 6 hours to fully invalidate any possible unauthorized access via this ID token feature."

Security | May 30, 2024

Check Point vulnerability far worse than thought – exploited in wild since April

Check Point vulnerability CVE-2024-24919

106,000 customers publicly exposed, initial searches suggest.

cybersecurity | May 29, 2024

New North Korean threat group seen deploying custom ransomware

Multiple Fortune 500 firms breached. Threat group uses remote IT staff, social engineering, trojanised npm packages, even a poisoned "tank game"